Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2016:1384
HistoryJul 05, 2016 - 8:09 p.m.

(RHSA-2016:1384) Moderate: ceph security update

2016-07-0520:09:03
access.redhat.com
37

EPSS

0.018

Percentile

88.2%

JSON

Red Hat Ceph Storage is a massively scalable, open, software-defined
storage platform that combines the most stable version of Ceph with a Ceph
management platform, deployment tools, and support services.

A flaw was found in the way handle_command() function would validate prefix value from user. An authenticated attacker could send a specially crafted prefix value resulting in ceph monitor crash.(CVE-2016-5009)

Upstream acknowledges Xiaoxi Chen as the original reporter of CVE-2016-5009.

All ceph users are advised to upgrade to this updated package, which
contains backported patches to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64python-rbd< 0.94.5-14.el7cppython-rbd-0.94.5-14.el7cp.x86_64.rpm
RedHat7x86_64ceph-test< 0.94.5-14.el7cpceph-test-0.94.5-14.el7cp.x86_64.rpm
RedHat7srcceph< 0.94.5-14.el7cpceph-0.94.5-14.el7cp.src.rpm
RedHat7x86_64librbd1-devel< 0.94.5-14.el7cplibrbd1-devel-0.94.5-14.el7cp.x86_64.rpm
RedHat7x86_64ceph-debuginfo< 0.94.5-14.el7cpceph-debuginfo-0.94.5-14.el7cp.x86_64.rpm
RedHat7x86_64librbd1< 0.94.5-14.el7cplibrbd1-0.94.5-14.el7cp.x86_64.rpm
RedHat7x86_64ceph-radosgw< 0.94.5-14.el7cpceph-radosgw-0.94.5-14.el7cp.x86_64.rpm
RedHat7x86_64ceph-common< 0.94.5-14.el7cpceph-common-0.94.5-14.el7cp.x86_64.rpm
RedHat7x86_64librados2< 0.94.5-14.el7cplibrados2-0.94.5-14.el7cp.x86_64.rpm
RedHat7x86_64ceph-mon< 0.94.5-14.el7cpceph-mon-0.94.5-14.el7cp.x86_64.rpm
Rows per page:
1-10 of 151

Related

openvas 2
redhatcve 1
nessus 4
ubuntucve 1
nvd 1
prion 1
redhat 1
cvelist 1
debiancve 1
veracode 1
cve 1
ubuntu 1
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:0367-1)
2021-04-19 00:00:00
Ubuntu: Security Advisory (USN-3452-1)
2017-10-12 00:00:00
redhatcve
redhatcve
CVE-2016-5009
2016-06-30 06:49:06
nessus
nessus
RHEL 7 : ceph (RHSA-2016:1384)
2018-08-29 00:00:00
SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2017:0367-1)
2017-02-03 00:00:00
openSUSE Security Update : ceph (openSUSE-2016-1500)
2016-12-21 00:00:00
ubuntucve
ubuntucve
CVE-2016-5009
2016-07-12 00:00:00
nvd
nvd
CVE-2016-5009
2016-07-12 19:59:06
prion
prion
Command injection
2016-07-12 19:59:00
redhat
redhat
(RHSA-2016:1385) Moderate: ceph security update
2016-07-05 20:54:05
cvelist
cvelist
CVE-2016-5009
2016-07-12 19:00:00
debiancve
debiancve
CVE-2016-5009
2016-07-12 19:59:06
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:12:20
cve
cve
CVE-2016-5009
2016-07-12 19:59:06
ubuntu
ubuntu
Ceph vulnerabilities
2017-10-11 00:00:00

EPSS

0.018

Percentile

88.2%

JSON
Related for RHSA-2016:1384
openvas2redhatcve1nessus4ubuntucve1nvd1prion1redhat1cvelist1debiancve1veracode1cve1ubuntu1